Anthropic's Mythos Is Going Live: What Security Teams Need to Prepare For
Anthropic plans to release its Mythos-class AI models to all customers within weeks. The model that found 10,000+ zero-day vulnerabilities is about to become widely accessible. Here's what that means for defenders.
Anthropic announced on May 29 that it plans to bring Mythos-class models to all customers “in the coming weeks,” alongside the public launch of Claude Opus 4.8. This is a significant shift from the company’s position just seven weeks earlier, when it declared the technology too dangerous for public access.
The security implications are substantial. Here’s what happened, why it matters, and what your team should be doing right now.
The Timeline
- March 26, 2026: Leaked blog post drafts reveal the existence of Claude Mythos
- April 7, 2026: Anthropic officially announces Claude Mythos Preview, restricts access to ~52 organizations through Project Glasswing
- May 2026: Anthropic reports Project Glasswing has uncovered 10,000+ high/critical-severity vulnerabilities
- May 29, 2026: Anthropic announces plans for wider release to all customers
In seven weeks, the model went from “too dangerous to release” to “coming to all customers soon.”
What Mythos Can Do
Based on Anthropic’s own disclosures and Project Glasswing results:
- Autonomously discovers zero-day vulnerabilities across every major operating system and web browser
- Constructs working exploits without human guidance
- Found vulnerabilities that survived decades of human review and automated testing (including a 27-year-old flaw in OpenBSD)
- Identified 271 high-severity vulnerabilities in Firefox alone during early testing
- Chains exploits together to achieve complex attack objectives
- Reverse-engineers exploits for closed-source software from known (N-day) vulnerabilities
This isn’t incremental improvement over existing security tools. It represents a qualitative shift in what’s possible for automated vulnerability discovery and exploitation.
Why the Wider Release Matters
Anthropic’s stated rationale: if defenders get this capability first, they can close dangerous holes before attackers develop similar tools at scale. The logic is sound in theory. In practice, it creates several immediate concerns:
1. The capability gap closes for attackers too. Once Mythos-class models are widely available (even through API access with guardrails), the techniques and approaches they use will be studied, replicated, and eventually reproduced in less restricted systems. The window where only defenders have this capability is measured in months, not years.
2. Guardrails have a track record of being bypassed. Every AI safety mechanism deployed to date has eventually been circumvented through jailbreaks, prompt injection, or creative misuse. Anthropic acknowledges this: even last week they stated that “no company, including Anthropic, has developed safeguards strong enough to prevent such models from being misused.”
3. The vulnerability disclosure pipeline will be overwhelmed. If thousands of organizations simultaneously gain the ability to find zero-days at scale, the responsible disclosure ecosystem (CVE assignment, vendor patching, NVD enrichment) will face a volume it was never designed to handle. This compounds the NVD capacity issues already in play.
What This Means for Your Security Program
Immediate Actions (Next 30 Days)
Accelerate your patching cadence. The 10,000+ vulnerabilities found by Project Glasswing are being disclosed to vendors now. Expect a surge of critical patches in the coming weeks. Organizations with slow patch cycles will be disproportionately exposed.
Audit your attack surface. Mythos excels at finding vulnerabilities in widely-deployed software. If you’re running unpatched versions of major operating systems, browsers, or open-source components, assume those vulnerabilities are now known (if not by you, then by the 52 organizations with current access).
Review your vulnerability management capacity. Your team’s ability to triage, prioritize, and remediate is about to be tested. If you’re already struggling with the current CVE volume (see our NVD article), this will compound the problem.
Medium-Term Preparation (60-90 Days)
Evaluate Mythos for your own defense. When the model becomes available, assess whether your organization should use it to proactively scan your own infrastructure. The cost-benefit is clear for organizations with large codebases or custom software.
Update your threat model. Your adversaries will eventually have access to Mythos-class capabilities (either through legitimate access, stolen credentials, or competing models that reach similar performance). Your threat model should assume that automated zero-day discovery is now a commodity capability for well-resourced attackers.
Strengthen your detection and response. When zero-days are discovered faster than they can be patched, detection and response become your primary defense. Invest in:
- Behavioral detection that doesn’t rely on known signatures
- Network segmentation that limits lateral movement even after initial compromise
- Incident response playbooks for zero-day exploitation scenarios
Strategic Considerations
The “secure by obscurity” era is ending. Software that relied on complexity as a defense (the assumption that finding vulnerabilities requires deep expertise and significant time) is now exposed. Every line of code in production should be assumed discoverable by AI-powered analysis.
Open-source software needs new security models. Many critical open-source projects lack the resources to handle the volume of vulnerability reports that AI-powered discovery will generate. Consider contributing to the security of open-source dependencies your organization relies on.
Regulatory response is coming. The EU is already seeking to “intensify” talks with the U.S. on AI models with cyber capabilities. Expect new governance frameworks specifically addressing AI-powered offensive security tools. Build compliance flexibility into your AI security strategy now.
The Measured View
Not everyone in the security community is alarmed. Some practitioners argue that the broader response has been overblown, noting that access to a Mythos-level model won’t immediately enable hacking operations previously out of reach for sophisticated actors. Nation-state adversaries likely already have comparable (if less efficient) capabilities.
The real risk isn’t that Mythos enables entirely new attacks. It’s that it dramatically lowers the cost and skill barrier for vulnerability discovery, potentially enabling a much larger pool of attackers to find and exploit zero-days that previously required elite expertise.
The Bottom Line
Whether you view Mythos as a defensive breakthrough or a proliferation risk (it’s both), the practical implications are the same: the rate of vulnerability discovery is about to accelerate dramatically, and your security program needs to be ready for a world where zero-days are found faster than they can be patched.
The organizations that will fare best are those that have already invested in defense-in-depth, rapid patching infrastructure, behavioral detection, and incident response capability. If your security posture depends on vulnerabilities remaining undiscovered, that assumption is no longer safe.
Sources: Anthropic Claude Mythos Preview, Project Glasswing, Forbes, Fortune, The Register, CNBC, CSO Online, IAPP.
Related articles
Verizon's 2026 DBIR Exposes the AI Governance Gap: What Security Teams Must Address Now
The 2026 DBIR reveals a dual AI crisis: attackers are scaling exploitation with AI while 67% of employees leak data through unsanctioned AI tools. Here's how to close the governance gap.
New Multi-Nation Agentic AI Security Guidance: What Your Team Should Do Now
ASD, CISA, NSA, and allied agencies released joint guidance on securing agentic AI systems. Here's what it means for your organization and the specific steps to take before deploying AI agents.
AI-Enabled Attacks Are Hitting Schools Hard: What the Education Sector Must Do Now
Congress has been warned about AI-powered cyber attacks targeting US schools. With 75% of ed-tech leaders citing AI threats as their top concern and only 7% of districts prepared, the education sector faces a crisis. Here's the practical path forward.